You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In #577 we observe flaky tests because both the user id and the password are generated using UUID v4 and the password policy deemed them too similar.
Given that the entropy is really high, the password policy definitely returned a false positive here and should subsequently be improved (also with tests) to ensure that the false positive rate is reduced.
Reproducing the bug
Check the password policy against a combination of UUIDs
The text was updated successfully, but these errors were encountered:
I will fix this by requiring the lcs to be propotionally less than 20% of the password length. Or are there any arguments for/against a specific threshold?
Describe the bug
In #577 we observe flaky tests because both the user id and the password are generated using UUID v4 and the password policy deemed them too similar.
Given that the entropy is really high, the password policy definitely returned a false positive here and should subsequently be improved (also with tests) to ensure that the false positive rate is reduced.
Reproducing the bug
Check the password policy against a combination of UUIDs
The text was updated successfully, but these errors were encountered: